CN

Earth WendigoEarth Wendigo

Also known as: Earth Wendigo

Origin
CN
Known aliases
1
Target sectors
2

Profile

Earth Wendigo is a threat actor from China that has been targeting several organizations — including government organizations, research institutions, and universities in Taiwan — since May 2019, aiming to exfiltrate emails from targeted organizations via the injection of JavaScript backdoors to a webmail system that is widely used in Taiwan. The threat actor also sent spear-phishing emails embedded with malicious links to multiple individuals, including politicians and activists, who support movements in Tibet, the Uyghur region, or Hong Kong.

Aliases· 1

Earth Wendigo

Target sectors· 2

GovernmentEducation

Known victims· 2

  • Hong Kong
  • Taiwan

References

  1. https://www.trendmicro.com/en_us/research/21/a/earth-wendigo-injects-javascript-backdoor-to-service-worker-for-.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
Earth Yako
Actor
Earth Kitsune
Actor
Earth Baxia
Actor
Earth Naga
Actor
Earth Lusca
Actor
Earth Krahang
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.